FCNSA, FCNSP
---
FortiGate 200A/B, 224B, 110C, 100A/D, 80C/CM/Voice, 60B/C/CX/D, 50B, 40C, 30B
FortiAnalyzer 100B, 100C
FortiMail 100,100C
FortiManager VM
FortiAuthenticator VM
FortiToken
FortiAP 220B/221B, 11C
FCNSA, FCNSP
---
FortiGate 200A/B, 224B, 110C, 100A/D, 80C/CM/Voice, 60B/C/CX/D, 50B, 40C, 30B
FortiAnalyzer 100B, 100C
FortiMail 100,100C
FortiManager VM
FortiAuthenticator VM
FortiToken
FortiAP 220B/221B, 11C
PCNSE
NSE
StrongSwan
On #1: why can' t you bind the tunnel to a vdom interface where the customer is atHi, here is my scenario : cisco GRE (10.2.1.1/30 - 10.2.1.2/30 ) FG gre customer VDOM link (10.1.1.1/30 - 10.1.1.2/30) root VDOM ipsec_phase1 interface (Y.Y.Y.Y - X.X.X.X) - Cisco Endpoint WAN link FG (Y.Y.Y.Y - X.X.X.X) - Cisco Endpoint Could you try to help me with configuration ? edit " gre1" set vdom " customer" set ip 10.2.1.2 255.255.255.255 set allowaccess ping set type tunnel set remote-ip 10.2.1.1 set snmp-index 13 set interface " vlink11" -> the VDOM link within customer VDOM What the GRE tunnel config should be look like ? config system gre-tunnel edit " gre1" set interface " vlink11" ????? set local-gw Y.Y.Y.Y -> WAN ip in root VDOM ???? set remote-gw X.X.X.X next
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.